$ rpki-client -vvf rpkica.twnic.tw/rpki/GSNET/0/3231312e37382e36342e302f32302d3234203d3e203338383337.roa File: 3231312e37382e36342e302f32302d3234203d3e203338383337.roa (raw, json) Hash identifier: BXuBK0LMjwx4Feg0mEC7/E23SnCajtY0CpedBH0UNLE= Subject key identifier: 76:EC:A1:1E:47:66:4F:7A:F8:2D:8C:52:78:FD:15:4E:E2:55:BF:74 Certificate issuer: /CN=A67F7A72FC031B1A33774C937883F79C7342B848 Certificate serial: 3A0A62D4CE0D61EA15C2E1C3CCEB29FBF3F5EDA4 Authority key identifier: A6:7F:7A:72:FC:03:1B:1A:33:77:4C:93:78:83:F7:9C:73:42:B8:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSNET/0/3231312e37382e36342e302f32302d3234203d3e203338383337.roa Signing time: Mon 11 May 2026 17:01:20 +0000 ROA not before: Mon 11 May 2026 16:56:20 +0000 ROA not after: Mon 10 May 2027 17:01:20 +0000 asID: 38837 IP address blocks: 211.78.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.crl rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:0a:62:d4:ce:0d:61:ea:15:c2:e1:c3:cc:eb:29:fb:f3:f5:ed:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A67F7A72FC031B1A33774C937883F79C7342B848 Validity Not Before: May 11 16:56:20 2026 GMT Not After : May 10 17:01:20 2027 GMT Subject: CN=76ECA11E47664F7AF82D8C5278FD154EE255BF74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ef:69:f4:c0:65:46:b4:bd:4e:94:76:eb:db: 82:8d:81:53:43:31:ee:d2:47:68:3b:b9:2c:77:fc: fd:d9:79:b9:63:3d:54:13:29:a9:25:4b:0a:d2:64: 50:74:1d:d9:79:a3:75:1a:c6:83:7f:37:19:9c:fa: 8a:f0:7a:68:d5:38:b4:48:cc:27:7c:71:d7:1f:e2: 8d:65:25:5b:c5:5b:aa:9d:be:e4:33:02:ea:34:4c: a2:6c:75:8e:b8:f2:06:8f:fc:e1:b2:40:d3:77:dc: c7:9c:71:19:64:a0:a3:e6:11:85:df:bf:4a:95:93: 28:f2:e7:70:88:b2:38:9e:42:8d:0a:be:bf:d5:72: 3f:28:e4:88:b8:e2:76:ee:1e:4d:ff:e7:2e:d6:f9: 8f:db:6c:a6:73:2c:71:b2:31:50:32:bf:e2:9a:07: d7:a1:e5:12:09:e9:df:0d:ef:22:d4:89:49:a2:c5: 03:12:e3:1f:af:1a:69:14:95:34:4a:0d:76:48:7a: e1:bf:63:2e:33:19:88:69:3f:bd:8f:62:06:ca:82: 46:42:4a:09:bb:bd:4c:52:05:f8:a5:8b:ec:e3:06: f8:ea:45:c6:e4:12:da:ea:68:b3:04:9b:ae:64:f5: e1:18:ac:14:4e:33:2d:dc:5d:a0:b5:4d:72:47:9e: e9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EC:A1:1E:47:66:4F:7A:F8:2D:8C:52:78:FD:15:4E:E2:55:BF:74 X509v3 Authority Key Identifier: keyid:A6:7F:7A:72:FC:03:1B:1A:33:77:4C:93:78:83:F7:9C:73:42:B8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSNET/0/3231312e37382e36342e302f32302d3234203d3e203338383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.78.64.0/20 Signature Algorithm: sha256WithRSAEncryption 05:bd:51:25:da:09:bd:af:f1:a0:9f:2d:76:97:6f:a6:db:25: f5:9c:fb:06:ff:8d:3f:2d:9b:b3:d5:3b:90:0a:41:37:4f:a8: db:5e:e3:a0:15:2f:93:de:0e:1e:c5:d5:c0:7c:47:65:4b:e0: f7:fe:60:49:a2:05:d6:72:33:a5:37:f5:44:d1:0d:4d:51:9f: a7:9f:56:68:62:c1:eb:44:8b:09:f5:aa:8b:aa:67:c5:a2:10: cd:b3:62:35:49:a3:31:95:e3:57:23:81:64:8f:95:6f:4c:75: da:7a:d9:bb:34:ac:ca:b1:83:86:9b:f9:0d:b0:bd:e5:14:9a: 7d:c6:a9:e3:d2:e2:3e:82:aa:9c:35:15:26:bc:b4:47:04:c7: 76:05:6d:6e:be:28:ff:8d:f0:c9:4b:d0:76:78:fb:44:a1:e4: 7f:f0:2c:67:08:48:a9:15:dc:5b:73:5b:ed:20:1a:0a:69:3d: d0:1d:06:7a:f3:44:7f:54:28:e8:0e:c8:21:d4:f2:9c:57:a6: 13:51:30:cf:56:bb:b9:9a:ff:f3:41:9a:c0:eb:2e:fa:a2:ac: 1c:e8:e3:6c:35:24:65:e7:5f:80:cb:92:c4:93:fc:70:9a:8b: 31:e7:cf:d7:32:a1:ff:ae:1e:ed:d0:b2:39:a5:c5:c4:45:7b: 1a:23:c3:b7 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUOgpi1M4NYeoVwuHDzOsp+/P17aQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY3RjdBNzJGQzAzMUIxQTMzNzc0QzkzNzg4M0Y3OUM3 MzQyQjg0ODAeFw0yNjA1MTExNjU2MjBaFw0yNzA1MTAxNzAxMjBaMDMxMTAvBgNV BAMTKDc2RUNBMTFFNDc2NjRGN0FGODJEOEM1Mjc4RkQxNTRFRTI1NUJGNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE72n0wGVGtL1OlHbr24KNgVND Me7SR2g7uSx3/P3ZebljPVQTKaklSwrSZFB0Hdl5o3UaxoN/Nxmc+orwemjVOLRI zCd8cdcf4o1lJVvFW6qdvuQzAuo0TKJsdY648gaP/OGyQNN33MeccRlkoKPmEYXf v0qVkyjy53CIsjieQo0Kvr/Vcj8o5Ii44nbuHk3/5y7W+Y/bbKZzLHGyMVAyv+Ka B9eh5RIJ6d8N7yLUiUmixQMS4x+vGmkUlTRKDXZIeuG/Yy4zGYhpP72PYgbKgkZC Sgm7vUxSBfili+zjBvjqRcbkEtrqaLMEm65k9eEYrBROMy3cXaC1TXJHnunzAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUduyhHkdmT3r4LYxSeP0VTuJVv3QwHwYDVR0j BBgwFoAUpn96cvwDGxozd0yTeIP3nHNCuEgwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NORVQv MC9BNjdGN0E3MkZDMDMxQjFBMzM3NzRDOTM3ODgzRjc5QzczNDJCODQ4LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0E2N0Y3QTcyRkMwMzFCMUEzMzc3NEM5Mzc4ODNG NzlDNzM0MkI4NDguY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HU05FVC8wLzMyMzEzMTJlMzczODJl MzYzNDJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDMzMzgzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATTTkAwDQYJKoZIhvcNAQELBQADggEBAAW9USXaCb2v8aCfLXaXb6bbJfWc+wb/ jT8tm7PVO5AKQTdPqNte46AVL5PeDh7F1cB8R2VL4Pf+YEmiBdZyM6U39UTRDU1R n6efVmhiwetEiwn1qouqZ8WiEM2zYjVJozGV41cjgWSPlW9Mddp62bs0rMqxg4ab +Q2wveUUmn3GqePS4j6Cqpw1FSa8tEcEx3YFbW6+KP+N8MlL0HZ4+0Sh5H/wLGcI SKkV3FtzW+0gGgppPdAdBnrzRH9UKOgOyCHU8pxXphNRMM9Wu7ma//NBmsDrLvqi rBzo42w1JGXnX4DLksST/HCaizHnz9cyof+uHu3QsjmlxcRFexojw7c= -----END CERTIFICATE-----Generated at Wed May 13 21:48:32 2026 by rpki-client